Information Technology, IP and Research in the Government World

Department of Defense Suspends the CMMC Pilot Program And CMMC Requirements In DoD Solicitations Pending Major Changes For CMMC 2.0

November 8, 2021 By Amy Mushahwar and Jon Knight

The Department of Defense (DoD) recently announced it will be revamping the nascent Cybersecurity Maturity Model Certification (CMMC) program pending two separate rulemaking processes. As detailed below, the DoD will be updating “the program structure and the requirements to streamline and improve implementation of the CMMC program.” We will be monitoring the rulemaking process for more details as they are known. However, the primary short-term takeaway is that until the rulemaking process is complete, the DoD is suspending the CMMC Pilot Program and will not include CMMC requirements [...]Read more

Executive Order on Improving the Nation’s Cybersecurity: Biden Implements New Reporting Requirements on IT Government Contractors

May 21, 2021 By Amy Mushahwar, Jessica Sharron and Arabella Okwara

On May 12. 2021, President Biden signed an Executive Order aimed at improving the Nation’s Cybersecurity by curtailing data breaches and malicious cyber campaigns. The Order comes in response to a number of recent cybersecurity incidents, including a ransomware attack on the Colonial Pipeline Co. that caused a temporary shutdown, resulting in gas shortages along the Eastern Seaboard and a nationwide spike in fuel prices. The Order seeks to establish a partnership between the Federal Government and the private sector to ensure a more secure cyber environment, creating a Cyber Safety Review [...]Read more

Warning: Iranian Cyber Response Possible Against Government Contractors

January 10, 2020 By Alston Government Contracts Team

As a result of heightened tension between the United States and Iran, companies, especially those that do business with the Federal Government and with the Department of Defense in particular, would be well-advised to take immediate steps to confirm and strengthen their cybersecurity measures. Read on for the post from our firm’s Privacy & Cybersecurity Blog discussing how regulators are warning of a possible rise in cyber-attacks. ... After Friday’s announcement of the killing of Major General Qassem Soleimani, a leader of Iran’s Quds Force, several regulators have put industry on [...]Read more

Food Marketing Institute v. Argus Leader Media: Enhanced FOIA Protection for Contractors’ “Confidential” Commercial or Financial Information

January 6, 2020 By Andrew Howard

For the last 55 years nearly all federal agencies and courts tasked with determining whether a contractor’s “commercial or financial” information is “confidential” for purposes of exemption from public disclosure under the Freedom of Information Act have had to evaluate – among other things – whether disclosure of the information likely would cause substantial harm to the competitive position of the person from whom the information was obtained. In Food Marketing Institute v. Argus Leader Media, 588 U.S. ___ (2019), the Supreme Court rejected this decades-long “competitive harm” [...]Read more

Jeniffer Roberts Quoted in Law360 Regarding Telecom Security Flaws

December 6, 2018 By Alston Government Contracts Team

Alston & Bird partner Jeniffer Roberts was quoted in Law360 on October 31, 2018 in the article, “Telecom Security Flaws Targeted With Bans, Compliance” The article takes a look at the telecom industry with a focus on cybersecurity threats on every level of communications networks. It explains that uncertainly is rising over whether more aggressive rules may push smaller and new contractors to leave the telecom sector—which would have the effect of slowing overall network development. Industry experts suggest that the telecom sector could see the most harm if the government imposes [...]Read more